• Documents
  • Authors
  • Tables
  • Other Seers ▼
    RefSeer AckSeer CollabSeer SeerSeer
  • Log in
  • Sign up
  • MetaCart

CiteSeerX logo

Advanced Search Include Citations
Advanced Search Include Citations | Disambiguate

A Distributed Calculus for Role-Based Access Control (2004)

Cached

  • Download as a PDF
    •  
  • Download as a PS

Download Links

  • [gdn.dsi.unifi.it]
  • [www.cogs.susx.ac.uk]
  • [www.informatics.sussex.ac.uk]
  • [www.cogs.susx.ac.uk]
  • [gdn.dsi.unifi.it]
  • [www.informatics.sussex.ac.uk]
  • [www.cogs.susx.ac.uk]

  • Save to List
  • Add to Collection
  • Correct Errors
  • Monitor Changes
by Chiara Braghin , Daniele Gorla , Vladimiro Sassone
Citations:11 - 0 self
  • Summary
  • Active Bibliography
  • Co-citation
  • Clustered Documents
  • Version History

BibTeX

@MISC{Braghin04adistributed,
    author = {Chiara Braghin and Daniele Gorla and Vladimiro Sassone},
    title = {A Distributed Calculus for Role-Based Access Control},
    year = {2004}
}

Bookmark

citeulike Connotea Bibsonomy Del.icio.us Digg Reddit

OpenURL

 

Abstract

Role-based access control (RBAC) is attracting increasing attention because it reduces the complexity and cost of security administration by interposing the notion of role in the assignment of permissions to users. In this paper, we present a formal framework relying on an extension of the π-calculus to study the behaviour of concurrent systems in a RBAC scenario. We define a type system ensuring that the specified policy is respected during computations, and a bisimulation to equate systems. The theory is then applied to three meaningful examples, namely finding the `minimal' policy to run a given system, refining a system to be run under a given policy (whenever possible), and minimizing the number of users in a given system without changing the overall behaviour.

Citations

944 Lattice-based access control models - Sandhu - 1993
725 Mobile ambients - Cardelli, Gordon - 1998
578 Types and Programming Languages - Pierce - 2002
537 The protection of information in computer systems - Saltzer, Schroeder - 1975
367 The ⇡-calculus: A Theory of Mobile Processes - Sangiorgi, Walker - 2001
300 Proposed NIST Standard for RoleBased Access Control - Ferraiolo, Sandhu, et al. - 2001
290 Functions as processes - Milner - 1992
266 D.: Role-based access control - Ferraiolo, Kuhn - 1992
250 A calculus of mobile agents - Fournet, Gonthier, et al. - 1996
228 Typing and subtyping for mobile processes - Pierce, Sangiorgi - 1996
174 Resource access control in systems of mobile agents - Hennessy - 2002
123 On reduction-based process semantics - Honda, Tokoro - 1995
108 Role-Based Authorization Constraints Specification - Ahn, Sandhu - 2000
80 On asynchrony in name-passing calculi - Merro, Sangiorgi - 1998
71 A logical framework for reasoning about access control models - Bertino, Catania, et al. - 2001
53 The name discipline of uniform receptiveness - Sangiorgi - 1999
48 Secrecy and group creation - Cardelli, Ghelli, et al.
48 Inheritance in the join calculus - Fournet, Laneve, et al. - 2003
26 Typed behavioural equivalences for processes in the presence of subtyping - Hennessy, Rathke
24 A lightweight approach to specification and analysis of role-based access control extensions - Schaad, Moffett - 2002
20 On modelling mobility - Amadio
20 Decidability of safety in graph-based models for access control - Koch, Mancini, et al. - 2002
14 A Formal Model for Role-Based Access Control Using Graph Transformation - Koch, Mancini, et al. - 2000
13 Least privilege and more - Schneider - 2003
9 Basic observables for a calculus for global computing - Nicola, Pugliese - 2007
6 The polyadicπ-calculus: A tutorial - Milner - 1993
The National Science Foundation
  • About CiteSeerX
  • Submit Documents
  • Privacy Policy
  • Help
  • Data
  • Source
  • Contact Us

Developed at and hosted by The College of Information Sciences and Technology

© 2007-2010 The Pennsylvania State University